CVE 10 CRITICAL

SandboxJS: Sandbox escape via Function.caller leakage of internal call op_CVE-2026-43898

May 28, 2026 invoker category_cve

10 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Description

SandboxJS is a JavaScript sandboxing library. Prior to 0.9.6, sandbox-defined functions expose Function.caller, allowing sandboxed code to recover the internal LispType.Call runtime callback. That callback can then be invoked with attacker-controlled fake context and obj values to extract blocked host statics, recover the real host Function constructor, and execute arbitrary host JavaScript. This vulnerability is fixed in 0.9.6.

AI Analysis

Sandbox escape via Function.caller leakage of internal call op

Basic Information

ID CVE-2026-43898

Source GitHub_M

Published May 28, 2026 at 17:50

Affected Product

Vendor nyariv

Product SandboxJS

Version < 0.9.6

Affected Versions nyariv SandboxJS < 0.9.6

CWE Classification

CWE-94

AI Assessment

AI Score 10 / 10

AI Severity Critical

Vendor nyariv

Product SandboxJS

Version < 0.9.6

References

{
    "lastseen": "",
    "description": "SandboxJS is a JavaScript sandboxing library. Prior to 0.9.6, sandbox-defined functions expose Function.caller, allowing sandboxed code to recover the internal LispType.Call runtime callback. That callback can then be invoked with attacker-controlled fake context and obj values to extract blocked host statics, recover the real host Function constructor, and execute arbitrary host JavaScript. This vulnerability is fixed in 0.9.6.",
    "published": "2026-05-28T17:50:31.581Z",
    "modified": "2026-05-28T17:50:31.581Z",
    "type": "cve",
    "title": "SandboxJS: Sandbox escape via Function.caller leakage of internal call op",
    "source": "GitHub_M",
    "references": "https://github.com/nyariv/SandboxJS/security/advisories/GHSA-g8f2-4f4f-5jqw\nhttps://github.com/nyariv/SandboxJS/commit/826865251232611ec94078bab5a18ec875dad4a5",
    "id": "CVE-2026-43898",
    "bulletinFamily": "",
    "cwe": [
        "CWE-94"
    ],
    "cvelist": null,
    "sourceData": "nyariv SandboxJS < 0.9.6",
    "sourceHref": "",
    "cvss": {
        "score": 10,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "SandboxJS",
    "version": "< 0.9.6",
    "vendor": "nyariv",
    "ai_description": "Sandbox escape via Function.caller leakage of internal call op",
    "ai_severity": "Critical",
    "ai_vendor": "nyariv",
    "ai_product": "SandboxJS",
    "ai_version": "< 0.9.6",
    "ai_score": 10
}

💭 Join the Security Discussion ❌ Cancel Reply